skelsec / aardwolfgui

Related projects ⓘ

Alternatives and complementary repositories for aardwolfgui

• eladshamir / BadWindowsService
  An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities
  ☆43Updated 2 years ago
• netero1010 / Quser-BOF
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆83Updated last year
• improsec / CaddyStager
  ☆35Updated 2 years ago
• C0axx / Modified-Thycotic-Secret-Stealer
  Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption
  ☆18Updated 2 years ago
• EspressoCake / Firewall_Walker_BOF
  A BOF to interact with COM objects associated with the Windows software firewall.
  ☆100Updated 3 years ago
• netwrix / server-untrust-account
  A technique for Active Directory domain persistence
  ☆39Updated last year
• n00py / GetFGPP
  Get Fine Grained Password Policy
  ☆65Updated 6 months ago
• EspressoCake / Process_Protection_Level_BOF
  ☆51Updated 3 years ago
• MythicC2Profiles / http
  Simple HTTP async comms using standard GET/POST requests
  ☆29Updated this week
• mgeeky / msi-shenanigans
  Proof of Concept code and samples presenting emerging threat of MSI installer files.
  ☆77Updated last year
• bugch3ck / SharpLdapWhoami
  WhoAmI by asking the LDAP service on a domain controller.
  ☆58Updated 2 years ago
• jsecurity101 / LDAPMon
  ☆44Updated last year
• An00bRektn / gopher47
  A third-party Gopher Assassin for the Havoc Framework.
  ☆44Updated 10 months ago
• EspressoCake / HandleKatz_BOF
  A BOF port of the research of @thefLinkk and @codewhitesec
  ☆94Updated 3 years ago
• fortalice / pyldapsearch
  Tool for issuing manual LDAP queries which offers bofhound compatible output
  ☆48Updated 5 months ago
• jrrgimenez / Nim-HalosGate-Injector
  Shellcode Injector that obtains system call opcodes using the Halo's Gate method to evade EDR Hooks.
  ☆19Updated 2 years ago
• xpn / WAMBam
  Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post
  ☆110Updated last year
• t94j0 / sddl_py
  Parse SDDL strings
  ☆35Updated 7 months ago
• X-C3LL / SharpNTLMRawUnHide
  C# version of NTLMRawUnHide
  ☆72Updated 2 years ago
• Cobalt-Strike / unhook-bof
  Remove API hooks from a Beacon process.
  ☆54Updated 2 years ago
• codewhitesec / SysmonEnte
  ☆68Updated 2 years ago
• Dramelac / GoldenCopy
  Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.
  ☆80Updated 6 months ago
• clod81 / shellcode_runner_copy_in_chunk
  C# loader that copies a chunk at the time of the shellcode in memory, rather that all at once
  ☆23Updated 2 years ago
• simondotsh / DirSync
  DirSync is a simple proof of concept PowerShell module to demonstrate the impact of delegating DS-Replication-Get-Changes and DS-Replicat…
  ☆27Updated last year
• thalpius / Microsoft-Defender-for-Identity-Encrypted-Password
  ☆35Updated 5 months ago
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆77Updated 2 years ago
• S3cur3Th1sSh1t / SharpOxidResolver
  IOXIDResolver from AirBus Security/PingCastle
  ☆45Updated 3 years ago
• jsecu / BOF-pack-1
  A care package of useful bofs for red team engagments
  ☆48Updated 2 years ago
• shelltrail / cmloot
  ☆37Updated 11 months ago
• deepinstinct / AMSI-Unchained
  Unchain AMSI by patching the provider’s unmonitored memory space
  ☆88Updated last year